On the definition of role mining

Authors:
Mario Frank;Joachim M. Buhmann;David Basin
Affiliations:
ETH Zurich, Zurich, Switzerland;ETH Zurich, Zurich, Switzerland;ETH Zurich, Zurich, Switzerland
Venue:
Proceedings of the 15th ACM symposium on Access control models and technologies
Year:
2010

Citing 24
Cited 9

Role engineering

RBAC '95 Proceedings of the first ACM Workshop on Role-based access control
Proposed NIST standard for role-based access control

ACM Transactions on Information and System Security (TISSEC)
Techniques of Cluster Algorithms in Data Mining

Data Mining and Knowledge Discovery
Role mining - revealing business roles for security administration using data mining technology

Proceedings of the eighth ACM symposium on Access control models and technologies
Engineering of Role/Permission Assignments

ACSAC '01 Proceedings of the 17th Annual Computer Security Applications Conference
Role mining with ORCA

Proceedings of the tenth ACM symposium on Access control models and technologies
RoleMiner: mining roles using subset enumeration

Proceedings of the 13th ACM conference on Computer and communications security
Role engineering using graph optimisation

Proceedings of the 12th ACM symposium on Access control models and technologies
The role mining problem: finding a minimal descriptive set of roles

Proceedings of the 12th ACM symposium on Access control models and technologies
A cost-driven approach to role engineering

Proceedings of the 2008 ACM symposium on Applied computing
Fast exact and heuristic methods for role minimization problems

Proceedings of the 13th ACM symposium on Access control models and technologies
Migrating to optimal RBAC with minimal perturbation

Proceedings of the 13th ACM symposium on Access control models and technologies
Mining roles with semantic meanings

Proceedings of the 13th ACM symposium on Access control models and technologies
A class of probabilistic models for role engineering

Proceedings of the 15th ACM conference on Computer and communications security
The Role Hierarchy Mining Problem: Discovery of Optimal Role Hierarchies

ACSAC '08 Proceedings of the 2008 Annual Computer Security Applications Conference
Permission Set Mining: Discovering Practical and Useful Roles

ACSAC '08 Proceedings of the 2008 Annual Computer Security Applications Conference
A formal framework to elicit roles with business meaning in RBAC systems

Proceedings of the 14th ACM symposium on Access control models and technologies
Evaluating role mining algorithms

Proceedings of the 14th ACM symposium on Access control models and technologies
Optimal Boolean Matrix Decomposition: Application to Role Engineering

ICDE '08 Proceedings of the 2008 IEEE 24th International Conference on Data Engineering
Multi-assignment clustering for Boolean data

ICML '09 Proceedings of the 26th Annual International Conference on Machine Learning
A probabilistic approach to hybrid role mining

Proceedings of the 16th ACM conference on Computer and communications security
RoleVAT: Visual Assessment of Practical Need for Role Based Access Control

ACSAC '09 Proceedings of the 2009 Annual Computer Security Applications Conference
StateMiner: an efficient similarity-based approach for optimal mining of role hierarchy

Proceedings of the 15th ACM symposium on Access control models and technologies
Role Engineering via Prioritized Subset Enumeration

IEEE Transactions on Dependable and Secure Computing

Towards an integrated approach to role engineering

Proceedings of the 3rd ACM workshop on Assurable and usable security configuration
The minimum transfer cost principle for model-order selection

ECML PKDD'11 Proceedings of the 2011 European conference on Machine learning and knowledge discovery in databases - Volume Part I
Multi-assignment clustering for boolean data

The Journal of Machine Learning Research
Context-aware role mining for mobile service recommendation

Proceedings of the 27th Annual ACM Symposium on Applied Computing
Generative models for access control policies: applications to role mining over logs with attribution

Proceedings of the 17th ACM symposium on Access Control Models and Technologies
Role Mining with Probabilistic Models

ACM Transactions on Information and System Security (TISSEC)
On the notion of redundancy in access control policies

Proceedings of the 18th ACM symposium on Access control models and technologies
Role mining algorithm evaluation and improvement in large volume android applications

Proceedings of the first international workshop on Security in embedded systems and smartphones
Over-Fitting and Error Detection for Online Role Mining

International Journal of Web Services Research

Quantified Score

Hi-index	0.00

Visualization

Abstract

There have been many approaches proposed for role mining. However, the problems solved often differ due to a lack of consensus on the formal definition of the role mining problem. In this paper, we provide a detailed analysis of the requirements for role mining, the existing definitions of role mining, and the methods used to assess role mining results. Given basic assumptions on how access-control configurations are generated, we propose a novel definition of the role mining problem that fulfills the requirements that real-world enterprises typically have. In this way, we recast role mining as a prediction problem.